We have a SBS 2011 based network. We would like to give our outside app support team access to the app server via RWW. Right now only members of the Domain Admin group is able to see servers through RWW. Is there any way to limit that to only that one server and have them as a member of a more limited group through RWW or is there another method that could be used other than RDP through a VPN. The app server is Windows 2008 R2 based.

7 Replies

You could add their user account to only the local admin group on the App Server (or any other group that grants the necessary access) and allow them to come in through RWW.

I can't remember how RWW sets the rights but I believe you can define RWW access as well access the machiens they have rights to within the SBS concole.

Publishing the list of server through RWW would definately not be a concern for an authentication user, however, limiting the ability to logon all of the machines is and I think that is what you are looking for here.

The account does have remote access granted, they can long in through RWW and see an email account, but there are no computers listed. In the SBS console, access to PCs can be added, but there isn't any way I can see to add specific server access.

If I add them to domain admins, they have access to all PCs and servers, I can limit them to the app server, but then they are unable to log in to RWW because they don't have permission to access the sbs box.